Felix Dreissig
c7754c4331
fix(aws): remove SHA-1 from ACM insecure key algorithms ( #7547 )
2025-04-22 16:11:47 +02:00
Daniel Barranquero
7800320189
feat(defender): add new check defender_antiphishing_policy_configured ( #7453 )
2025-04-22 16:11:47 +02:00
Daniel Barranquero
972c88e421
feat(defender): add new check defender_malware_policy_notifications_internal_users_malware_enabled ( #7435 )
...
Co-authored-by: HugoPBrito <hugopbrit@gmail.com >
Co-authored-by: Sergio Garcia <hello@mistercloudsec.com >
2025-04-22 16:11:47 +02:00
Daniel Barranquero
3ee420769a
feat(defender): add service and new check defender_malware_policy_common_attachments_filter_enabled ( #7425 )
...
Co-authored-by: HugoPBrito <hugopbrit@gmail.com >
Co-authored-by: Sergio Garcia <hello@mistercloudsec.com >
2025-04-22 16:11:47 +02:00
Daniel Barranquero
f8d9873655
feat(exchange): add new check exchange_mailbox_audit_bypass_disabled ( #7418 )
...
Co-authored-by: HugoPBrito <hugopbrit@gmail.com >
Co-authored-by: MrCloudSec <hello@mistercloudsec.com >
2025-04-22 16:11:47 +02:00
Daniel Barranquero
3f5508847a
feat(exchange): add service and new check exchange_organization_mailbox_auditing_enabled ( #7408 )
...
Co-authored-by: HugoPBrito <hugopbrit@gmail.com >
Co-authored-by: MrCloudSec <hello@mistercloudsec.com >
2025-04-22 16:11:47 +02:00
Hugo Pereira Brito
ed54b39211
feat(teams): add new check teams_email_sending_to_channel_disabled ( #7533 )
...
Co-authored-by: Sergio Garcia <hello@mistercloudsec.com >
2025-04-22 16:11:47 +02:00
HugoPBrito
b6e1551397
Revert "feat: remove provider_id and adapt logic"
...
This reverts commit 3d9d118d2c .
2025-04-21 17:49:30 +02:00
HugoPBrito
c8567b5d2b
Revert "fix: restore 2 tests"
...
This reverts commit 361269370a .
2025-04-21 17:49:12 +02:00
HugoPBrito
361269370a
fix: restore 2 tests
2025-04-21 15:02:53 +02:00
HugoPBrito
3d9d118d2c
feat: remove provider_id and adapt logic
2025-04-21 14:58:13 +02:00
HugoPBrito
b50a91d3e6
feat: enhance json parse logging
2025-04-21 13:23:37 +02:00
HugoPBrito
0843c49475
feat: add tests
2025-04-21 12:52:32 +02:00
HugoPBrito
63f4b4f7d4
feat: ensure pwsh user belongs to tenant
2025-04-16 19:10:57 +02:00
HugoPBrito
754a0748da
fix(m365): test_connection
2025-04-16 16:38:15 +02:00
Sergio Garcia
aa3182ebc5
feat(gcp): support CLOUDSDK_AUTH_ACCESS_TOKEN ( #7495 )
2025-04-16 10:35:04 -04:00
Hugo Pereira Brito
52bd48168f
feat: adapt Microsoft365 provider to use PowerShell ( #7331 )
...
Co-authored-by: MrCloudSec <hello@mistercloudsec.com >
2025-04-15 13:24:09 -04:00
Bogdan A
42f46b0fb1
feat(gcp): add check for unused Service Accounts ( #7419 )
...
Co-authored-by: MrCloudSec <hello@mistercloudsec.com >
2025-04-14 11:53:54 -04:00
eeche
3ef79588b4
feat(NHN): add NHN cloud provider with 6 checks ( #6870 )
...
Co-authored-by: MrCloudSec <hello@mistercloudsec.com >
2025-04-09 09:13:24 -04:00
Sergio Garcia
b55f8efed1
fix: handle errors in AWS, Azure, and GCP ( #7456 )
2025-04-08 18:05:43 +05:45
Sergio Garcia
74f1da818e
fix(gcp): ignore redirect balancers and add regional ones ( #7442 )
2025-04-07 11:47:02 -04:00
Sergio Garcia
8552a578a0
fix(aws): solve multiple errors ( #7431 )
2025-04-04 09:34:58 -04:00
Adrián Jesús Peña Rodríguez
6dbf2ac606
feat: add missing SDK fields to API findings and resources ( #7318 )
2025-04-04 14:57:49 +02:00
Pedro Martín
e4d234fe03
fix(azure): remove resource_name inside the Check_Report ( #7420 )
2025-04-03 11:35:02 -04:00
Sergio Garcia
41e576f4f1
fix(gcp): make logging sink check at project level ( #7421 )
2025-04-03 09:37:46 -04:00
Pedro Martín
5a59bb335c
fix(resources): add the correct id and names for resources ( #7410 )
2025-04-01 20:30:37 +02:00
Daniel Barranquero
6a3b8c4674
feat(entra): add new check entra_admin_users_cloud_only ( #7286 )
2025-04-01 19:14:15 +02:00
dependabot[bot]
97db38aa25
chore(deps): bump azure-mgmt-containerregistry from 10.3.0 to 12.0.0 ( #7025 )
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Rubén De la Torre Vico <ruben@prowler.com >
2025-04-01 10:29:31 +02:00
Bogdan A
51e796a48d
feat(gcp): add check for dormant (unused) SA keys ( #7348 )
...
Co-authored-by: MrCloudSec <hello@mistercloudsec.com >
Co-authored-by: Sergio Garcia <sergargar1@gmail.com >
2025-03-31 18:14:21 +02:00
Hugo Pereira Brito
024f1425df
feat(entra): add new check entra_legacy_authentication_blocked ( #7240 )
2025-03-31 18:12:26 +02:00
Hugo Pereira Brito
a7ed610da9
feat(entra): add new check entra_users_mfa_enabled ( #7228 )
2025-03-31 17:54:52 +02:00
Hugo Pereira Brito
7ba99f22cd
feat(entra): add new check entra_admin_users_phishing_resistant_mfa_enabled ( #7211 )
...
Co-authored-by: Sergio Garcia <hello@mistercloudsec.com >
2025-03-31 17:52:28 +02:00
Hugo Pereira Brito
b8ce09ec34
fix(entra): check name and logic of entra_admin_users_have_mfa_enabled ( #7230 )
2025-03-31 17:50:51 +02:00
Daniel Barranquero
c243110a49
feat(entra): add new check entra_policy_guest_invite_only_for_admin_roles ( #7241 )
...
Co-authored-by: Sergio Garcia <hello@mistercloudsec.com >
2025-03-31 14:53:50 +02:00
Daniel Barranquero
ee27636f32
fix(redshift): validation error for Cluster.multi_az ( #7381 )
2025-03-31 13:55:48 +02:00
Daniel Barranquero
9312890e6a
feat(entra): add new check entra_policy_guest_users_access_restrictions ( #7234 )
2025-03-31 12:45:26 +02:00
Daniel Barranquero
9578281b4f
feat(entra): add new check entra_policy_restricts_user_consent_for_apps ( #7225 )
2025-03-31 12:32:51 +02:00
Hugo Pereira Brito
e06a33de84
feat(entra): add new check entra_managed_device_required_for_mfa_registration ( #7203 )
...
Co-authored-by: MrCloudSec <hello@mistercloudsec.com >
2025-03-31 12:24:47 +02:00
Daniel Barranquero
87c038f0c2
fix(rds): hundle Certificate rds-ca-2019 not found ( #7383 )
2025-03-27 11:09:33 +01:00
Daniel Barranquero
d39598c9fc
fix(stepfunctions): Nonetype object has no attribute level ( #7386 )
2025-03-26 19:39:27 +01:00
Daniel Barranquero
5ea9106259
fix(fms): resource metadata could not be converted to dict ( #7379 )
2025-03-26 19:25:00 +01:00
Daniel Barranquero
5d6ed640f0
fix(vm): handle Nonetype is not iterable for extensions ( #7360 )
...
Co-authored-by: Sergio Garcia <hello@mistercloudsec.com >
2025-03-25 12:25:15 +01:00
Sergio Garcia
dd1cc2d025
fix(s3): handle None S3 account public access block ( #7350 )
2025-03-25 11:39:19 +01:00
Andoni Alonso
d989425490
fix(vm): handle NoneType accessing security_profile ( #7221 )
2025-03-25 09:33:00 +01:00
Hugo Pereira Brito
1e324b7ed2
fix(network): handle Nonetype is not iterable for security groups ( #7208 )
2025-03-25 09:28:37 +01:00
Sergio Garcia
e68aa62f94
fix(iam): handle none SAML Providers ( #7359 )
2025-03-25 09:24:32 +01:00
Daniel Barranquero
332b98a1ab
fix(iam): handle UnboundLocalError cannot access local variable 'report' ( #7361 )
2025-03-25 09:22:35 +01:00
Pedro Martín
d0736af209
fix(gcp): make provider id mandatory in test_connection ( #7296 )
2025-03-19 18:33:49 +05:45
Pedro Martín
2747a633bc
fix(k8s): remove typos from PCI 4.0 ( #7294 )
2025-03-19 09:31:40 +01:00
Daniel Barranquero
9d6147a037
fix(route53): solve false positive in route53_public_hosted_zones_cloudwatch_logging_enabled ( #7201 )
2025-03-18 16:54:49 +01:00